Skip to content

CSRF

Jump to bottom
yibinericxia edited this page Nov 14, 2021 · 4 revisions

Apply "SameSite"

Add "SameSite=strict" to the cookie and use it in the response header.

CSRF Token

  • Generation:

  • Implementation: Transmit the CSRF token within a hidden field of a form which is submitted via POST

References

Frontend

Microservice

Database

Data Transfer and Processing

API Gateway

Automation & Testing

DevSecOps

Cloud

Security

Frameworks

Programming

Files

Migration

Others

Clone this wiki locally